What are the best Wireshark alternatives?
Wireshark is described as 'is the world's foremost network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network. It is the de facto (and often de jure) standard across many industries and educational institutions' and is a leading network analyzer in the network & admin category. There are more than 50 alternatives to Wireshark for a variety of platforms, including Windows, Linux, Mac, iPhone and Android. The best alternative is tcpdump, which is both free and Open Source. Other great apps like Wireshark are CloudShark, Fiddler, Intercepter-NG and Microsoft Network Monitor.
Wireshark is mainly a Network Analyzer but alternatives to it may also be Network Monitors or HTTP(S) Debuggers. Filter by these if you want a narrower list of alternatives or looking for a specific functionality of Wireshark.- tcpdump is a common packet analyzer that runs under the command line. It allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network to which the computer is attached.
tcpdump vs Wireshark opinions
It's open source and use CLI - A web based platform that lets you view, analyze, and share packet capture files in a browser. Works in Safari for iPad and iPhone.
- Fiddler is a Web Debugging Proxy which logs all HTTP(S) traffic between your computer and the Internet. Fiddler allows you to inspect all HTTP(S) traffic, set breakpoints, and "fiddle" with incoming or outgoing data.
- Freemium • Proprietary
- Windows
- Intercepter-NG is a multifunctional network toolkit for various types of IT specialists.
- Free • Proprietary
- Mac
- Windows
- Linux
- Android
- iPhone
- Android Tablet
- BSD
- iPad
Discontinued
App unavailable on Play Store and website is flagged by modern browsers as potentially malicious.
Warning
Website blocked by modern browsers as possible trojan.
- Microsoft Network Monitor is a packet analyzer. It enables capturing, viewing, and analyzing network data and deciphering network protocols. It can be used to troubleshoot network problems and applications on the network.
- NetHogs is a small 'net top' tool. Instead of breaking the traffic down per protocol or per subnet, like most tools do, it groups bandwidth by process.
- Ettercap is a suite for man in the middle attacks on LAN. It features sniffing of live connections, content filtering on the fly and many other interesting tricks.
- NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can parse PCAP files and regenerate/reassemble transmitted files and certificates from PCAP files with HTTP, FTP, SMB, SMB2, TFTP and several other protocols.
- Sysdig is open source, system-level exploration: capture system state and activity from a running Linux instance, then save, filter and analyze. Think of it as strace + tcpdump + lsof + awesome sauce.
- Free • Open Source
- Mac
- Windows
- Linux
No screenshots yet - A modern and intuitive HTTP debugging proxy.